CN117651273A - Smart card communication message processing method, device, equipment and medium - Google Patents
Smart card communication message processing method, device, equipment and medium Download PDFInfo
- Publication number
- CN117651273A CN117651273A CN202311650591.2A CN202311650591A CN117651273A CN 117651273 A CN117651273 A CN 117651273A CN 202311650591 A CN202311650591 A CN 202311650591A CN 117651273 A CN117651273 A CN 117651273A
- Authority
- CN
- China
- Prior art keywords
- message
- encryption
- splitting
- sent
- units
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004891 communication Methods 0.000 title claims abstract description 48
- 238000003672 processing method Methods 0.000 title claims description 21
- 238000012545 processing Methods 0.000 claims abstract description 71
- 238000000034 method Methods 0.000 claims abstract description 32
- 238000004364 calculation method Methods 0.000 claims description 12
- 238000004422 calculation algorithm Methods 0.000 claims description 7
- 238000004590 computer program Methods 0.000 claims description 5
- 238000010586 diagram Methods 0.000 description 8
- 230000008569 process Effects 0.000 description 8
- 230000003287 optical effect Effects 0.000 description 6
- 230000006870 function Effects 0.000 description 5
- 238000011161 development Methods 0.000 description 4
- 230000003993 interaction Effects 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 230000009286 beneficial effect Effects 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 2
- 238000013461 design Methods 0.000 description 2
- 238000009434 installation Methods 0.000 description 2
- 230000002093 peripheral effect Effects 0.000 description 2
- 230000000644 propagated effect Effects 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 238000003491 array Methods 0.000 description 1
- 230000015556 catabolic process Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000006731 degradation reaction Methods 0.000 description 1
- 239000000835 fiber Substances 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 239000013307 optical fiber Substances 0.000 description 1
- 230000008707 rearrangement Effects 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000001502 supplementing effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
- H04W12/033—Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/30—Security of mobile devices; Security of mobile applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/18—Information format or content conversion, e.g. adaptation by the network of the transmitted or received information for the purpose of wireless delivery to users or terminals
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/70—Reducing energy consumption in communication networks in wireless communication networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
- Telephone Function (AREA)
Abstract
The embodiment of the invention discloses a method, a device, equipment and a medium for processing communication messages of a smart card, wherein the method applied to a mobile phone shield management end comprises the following steps: detecting the message length of a message to be sent, and splitting the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units; transmitting the message set to a message encryption device to obtain a plurality of encrypted message units after the message encryption device is subjected to encryption processing; and sequentially and respectively sending the encrypted message units to a target chip for message processing. The technical scheme of the embodiment of the invention solves the problem of excessive connection times in the current business limited by the message length, and can reduce the consumption of short connection resources of the system and improve the performance and stability of the system on the basis of meeting the requirements of GP standards and short connection architecture.
Description
Technical Field
Embodiments of the present invention relate to the field of computer technologies, and in particular, to a method, an apparatus, a device, and a medium for processing a communication message of a smart card.
Background
The technology of the mobile phone shield is mostly a security design completed based on GP (Global Platform) specifications, and the security of the mobile phone shield depends on a physical Security Element (SE), an encryption algorithm and the like. The GP specification specifies that when a handset shield management side (trusted service management system, trade Skill Master, TSM) interacts with a security chip, there is a limit to the message instruction length of the communication message unit (Application Protocol data unit, apdu). When the message content exceeds the limit, multiple apdu message instructions in the message may need to be split.
In some enterprises, a special encryption machine management end is used for managing encryption machine equipment to serve other systems as a basic service platform, and other systems interact with the encryption machine management end in a short connection mode to complete encryption and decryption operations. Therefore, the TSM sends the apdu command to the encryptor for processing in sequence in a short connection mode, each apdu command needs to establish a short connection, and the number of connections of one service is very large, which can cause excessive use of resources, possibly trigger a system bottleneck and cause performance degradation.
Disclosure of Invention
The embodiment of the invention provides a smart card communication message processing method, a device, equipment and a medium, which can reduce the consumption of short connection resources of a system and improve the performance and stability of the system on the basis of meeting the requirements of GP standards and a short connection architecture.
In a first aspect, an embodiment of the present invention provides a method for processing a communication message of a smart card applied to a mobile phone shield management end, where the method includes:
detecting the message length of a message to be sent, and splitting the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units;
transmitting the message set to a message encryption device to obtain a plurality of encrypted message units after the message encryption device is subjected to encryption processing;
and sequentially and respectively sending the encrypted message units to a target chip for message processing.
In a second aspect, an embodiment of the present invention provides a smart card communication message processing method applied to a message encrypting device, where the method includes:
acquiring a message set sent by a mobile phone shield management end, and identifying a splitting mark of a message in the message set;
splitting the message according to the message splitting mark to obtain a plurality of message units;
and respectively carrying out encryption processing on each message unit, and sending the encrypted message set to the mobile phone shield management end.
In a third aspect, an embodiment of the present invention provides a smart card communication message processing apparatus configured at a handset shield management end, where the apparatus includes:
the message splitting module detects the message length of the message to be sent, and splits the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units;
the message encryption management module is used for sending the message set to the message encryption equipment so as to acquire a plurality of encrypted message units after the message encryption equipment is subjected to encryption processing;
and the message sending module is used for sequentially and respectively sending the encrypted message units to a target chip for message processing.
In a fourth aspect, an embodiment of the present invention provides a smart card communication message processing apparatus configured in a message encrypting device, the apparatus including:
the information acquisition module to be encrypted is used for acquiring a message set sent by a mobile phone shield management end and identifying a splitting mark of a message in the message set;
the message splitting processing module is used for splitting the message according to the message splitting mark to obtain a plurality of message units;
and the message encryption module is used for respectively carrying out encryption processing on each message unit and sending the encrypted message set to the mobile phone shield management end.
In a fifth aspect, embodiments of the present invention further provide a computer apparatus, the computer apparatus including:
one or more processors;
a memory for storing one or more programs;
the one or more programs, when executed by the one or more processors, cause the one or more processors to implement the smart card communication message processing method as provided by any embodiment of the present invention.
In a sixth aspect, an embodiment of the present invention further provides a computer readable storage medium having stored thereon a computer program which, when executed by a processor, implements a smart card communication message processing method as provided by any embodiment of the present invention.
According to the embodiment of the invention, the message length of the message to be sent is detected, and the message to be sent is split according to the preset standard information length, so that a message set containing a plurality of message units is obtained; transmitting the message set to a message encryption device to obtain a plurality of encrypted message units after the message encryption device is subjected to encryption processing; and sequentially and respectively sending the encrypted message units to a target chip for message processing. The technical scheme of the embodiment of the invention solves the problem of excessive connection times in the current business limited by the message length, and can reduce the consumption of short connection resources of the system and improve the performance and stability of the system on the basis of meeting the requirements of GP standards and short connection architecture.
Drawings
FIG. 1 is a flow chart of a method for processing a communication message of a smart card according to an embodiment of the present invention;
FIG. 2 is a flowchart of a method for processing a communication message of a smart card according to an embodiment of the present invention;
fig. 3 is a schematic diagram of a message interaction process between a mobile phone shield management end, an encryption machine management end and a security chip provided by an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a smart card message processing device according to an embodiment of the present invention;
fig. 5 is a schematic structural diagram of a smart card message processing device according to an embodiment of the present invention;
fig. 6 is a schematic structural diagram of a computer device according to an embodiment of the present invention.
Detailed Description
The invention is described in further detail below with reference to the drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of the invention and are not limiting thereof. It should be further noted that, for convenience of description, only some, but not all of the structures related to the present invention are shown in the drawings.
Fig. 1 is a flowchart of a smart card communication message processing method applied to a mobile phone shield management end, which is provided in an embodiment of the present invention, and the embodiment may be applicable to a scenario of smart card communication message processing, especially a case where the mobile phone shield management end performs information interaction with a security chip. The method can be executed by a smart card communication message processing device configured at a mobile phone shield management end, and the device can be realized by software and/or hardware and is integrated into computer equipment with an application development function.
As shown in fig. 1, the smart card communication message processing method applied to the mobile phone shield management end of the present embodiment includes the following steps:
s110, detecting the message length of the message to be sent, and splitting the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units.
In the field of banking, communication is typically performed in accordance with the standard communication message protocol (Application Protocol data unit, apdu) between an external entity and a smart card as specified in the GP (GlobalPlatform) specification. An apdu may represent an information unit transferred between the smart card and the smart card reader.
The GP specification is a card industry specification that provides a system management architecture for the card issuer to manage smart cards, enabling the card issuer to create an IC card system running a single application or multiple applications to meet its evolving business needs. Most of the current financial cards or sim cards are products derived based on GP standards, and most of the emerging mobile phone shield technologies in the financial industry are safety designs completed based on the GP standards.
According to the GP specification, the length of one apdu cannot exceed 0XFF bytes, and when the message required to be communicated exceeds the specified length, the original communication message needs to be split into a plurality of apdus.
Specifically, when the message to be sent is obtained, that is, the message interacted with the security chip, it may be first determined whether the message length of the message to be sent is greater than the preset standard information length. And when the message length of the message to be sent is larger than the preset standard information length, splitting the message by taking the preset standard information length as a message splitting unit. For example, the message to be sent is split into a number of apdus of length 0XFF bytes.
After the message is split, the last apdu is less than 0XFF byte, and the complete filling is required according to GP specification, so that all the apdus are assembled into an apdu set, namely a message set containing a plurality of message units.
In addition, a split flag may be added at each message split location; the split mark may be a vertical line, a diagonal line, or a preset designated identifier.
And S120, the message set is sent to a message encryption device to acquire a plurality of encrypted message units after the message encryption device is subjected to encryption processing.
If the message set containing a plurality of message units does not exceed the communication bandwidth between the mobile phone shield management end and the message encryption equipment, the message set can be sent to the message encryption equipment at a time. The message encrypting device encrypts each message unit of the message set, so that a plurality of encrypted message units after encryption can be obtained in one connection process with the message encrypting device.
And S130, sequentially and respectively sending the encrypted message units to a target chip for message processing.
The mobile phone shield management end is a trusted service management system (Trade Skil lMaster, TSM) used for managing security devices such as security chips.
The TSM sequentially sends the encrypted apdu to the security chip, and after the security chip executes one apdu, the security chip returns a TSM execution result, and if the execution is successful, the security chip continues to send the remaining apdu.
In addition, before detecting the message length of the message to be sent, the mobile phone shield management terminal can also determine whether the connection with the message encryption equipment is a long connection or a short connection. If the connection is short, the message processing can be performed according to the message processing procedure in the embodiment, and if the connection is long, the message is not required to be split.
According to the technical scheme, the message to be sent is split according to the length of the preset standard information by detecting the length of the message to be sent, so that a message set containing a plurality of message units is obtained; transmitting the message set to a message encryption device to obtain a plurality of encrypted message units after the message encryption device is subjected to encryption processing; and sequentially and respectively sending the encrypted message units to a target chip for message processing. The technical scheme of the embodiment of the invention solves the problem of excessive connection times in the current business limited by the message length, and can reduce the consumption of short connection resources of the system and improve the performance and stability of the system on the basis of meeting the requirements of GP standards and short connection architecture.
Fig. 2 is a flowchart of a smart card communication message processing method applied to a message encryption device according to an embodiment of the present invention, where the smart card communication message processing method applied to a mobile phone shield management end in the embodiment is the same as the above embodiment. The method may be performed by a smart card communication message processing apparatus configured in a message encrypting device, which may be implemented in software and/or hardware, integrated in a computer device having application development functionality.
As shown in fig. 2, the smart card communication message processing method applied to the message encrypting apparatus of the present embodiment includes the steps of:
s210, acquiring a message set sent by a mobile phone shield management end, and identifying a split mark of a message in the message set.
Before information interaction is carried out between the mobile phone shield management terminal and the security chip, information which needs to be sent to the security chip is sent to the encryption terminal for encryption processing.
When the message to be encrypted sent by the mobile phone shield management terminal is sent in the form of a message set, the message encryption equipment can identify the split mark of the message in the message set, such as vertical lines or oblique lines.
S220, splitting the message according to the message splitting mark to obtain a plurality of message units.
S230, encrypting each message unit, and sending the encrypted message set to the mobile phone shield management end.
The process of encrypting each message unit may be that each message unit is encrypted according to a preset encryption algorithm; and MAC computation is performed on the message unit subjected to the encryption computation.
The preset encryption algorithm can be any key algorithm or information verification mechanism. After each message unit is encrypted, an encrypted message set can be obtained, and then the encrypted message set is fed back to the mobile phone shield management end. So that the handset shield management terminal interacts with the security chip based on the encrypted message unit.
According to the technical scheme, a message set sent by a mobile phone shield management end is obtained, and split marks of messages in the message set are identified; splitting the message according to the message splitting mark to obtain a plurality of message units; and respectively carrying out encryption processing on each message unit, and sending the encrypted message set to the mobile phone shield management end. The method comprises the steps of obtaining a plurality of message units in batches, encrypting the message units, returning the message units to the mobile phone shield management end, reducing the connection times with the mobile phone shield management end in a one-time service processing process, reducing the short connection resource consumption of the system and improving the performance and stability of the system on the basis of meeting the requirements of GP standards and a short connection architecture.
Fig. 3 is a process of message interaction between a trusted service management system (e.g., a handset shield management end) and an encryptor management end and a security chip, where a message object is a product installation package, in a specific example.
As shown in fig. 3: firstly, the TSM divides the content of the installation package according to an apdu mode, after division, the last apdu is less than 0XFF byte, filling is complete according to GP specification requirements, all the apdus are assembled into an apdu set, and the apdu set is sent to an encryption machine management end in a one-time short connection mode. Then, the encryptor management system splits the apdus according to the vertical lines, after splitting, the encryptor management system completes the encryption operation and the MAC operation, and the results of each apdu are connected together in a splitting mode through the vertical lines and returned to the TSM end. And the TSM sequentially sends the processed apdu to the security chip, and after the security chip executes the apdu, the security chip returns a TSM execution result, and if the execution is successful, the security chip continues to send the rest apdu.
Specifically, when the TSM end assembles the apdu instruction, the apdu instruction may be split by a vertical line. For example: the instruction set apdubat=apdu1|apdu2|..the TSM end sends an apdu instruction set adpuBat to the encryption machine end, and encryption and mac calculation are applied for.
After the encryption machine receives the apduBat data, the following steps are mainly carried out: first, the apduBat is split into independent apdu instructions apdu1, apdu2, and..then, each apdu is subjected to encryption calculation to obtain encrypted message units apduEnc1, apduEnc 2.
Taking apduEnc1 as an example, the apdu instruction includes a header and a data portion, and only the data portion needs to be encrypted. First, the apdu header takes 10 bytes, separating the header and the data portion. Then, filling data into apduData1 is completed according to specifications, filling to an integer multiple of 8, and supplementing 0x800x000x00. Further, the filled data ad1 is encrypted. Parameters such as keys, algorithms and the like are related, and are not shown here. Then, the apdu header is updated (the header information contains the data length, and the encrypted data length may change). Finally, the head and the encryption part are spliced to complete the encryption process.
After encryption, MAC computation is performed for each apdu, resulting in apduMac1, apduMac 2. To verify the integrity of the data transmission during the life cycle (i.e., the entire traffic), the MAC calculation parameters are in uplink and downlink mode. First, apdu1 may be populated according to the GP specification. Then, the apduMac1 value is generated. And then generates new MAC calculation parameters for MAC calculation parameters used when apdu2 performs MAC calculation.
After the encryption machine end is processed, information assembly is carried out, and the information assembly can be expressed as apduRes1=apduEnc1+apduMac1; apdure2=apduenc2+apdumac2; … …. After assembly is complete, apduRes1|apdures2|.
After the TSM receives apduRes1|apdures2|. And sequentially sending the superdivision result, for example, apduRes1 is sent to a security chip, the security chip carries out operations such as decryption and integrity verification on the apduRes1, and an apdu1 instruction is executed. The execution completes the retransmission of the next until all transmissions are completed.
In the process, apdu1, apdu2 and apdu2 are sent to the encryptor equipment for encryption respectively in the prior art, encryption processing of all message units can be realized by short connection for many times, the message units are combined into one-time short connection, and the number of times of short connection between the TSM and the management end of the encryptor can be greatly reduced by assembling and splitting an apdu instruction, so that the stability and performance of the system are improved.
Fig. 4 is a schematic structural diagram of a smart card communication message processing apparatus configured at a mobile phone shield management end according to an embodiment of the present invention, where the embodiment is applicable to a scenario in which the mobile phone shield management end communicates with a security chip end, and the smart card communication message processing apparatus configured at the mobile phone shield management end may be implemented by software and/or hardware, and is integrated in a computer terminal device with an application development function.
As shown in fig. 4, the smart card communication message processing apparatus configured at the handset shield management end includes: a message splitting module 310, a message encryption management module 320, and a message sending module 330.
The message splitting module 310 detects the message length of the message to be sent, and splits the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units; a message encryption management module 320, configured to send the message set to a message encryption device, so as to obtain a plurality of encrypted message units after the message encryption device performs encryption processing; and the message sending module 330 is configured to send the encrypted message units to a target chip in sequence for message processing.
According to the technical scheme, the message to be sent is split according to the length of the preset standard information by detecting the length of the message to be sent, so that a message set containing a plurality of message units is obtained; transmitting the message set to a message encryption device to obtain a plurality of encrypted message units after the message encryption device is subjected to encryption processing; and sequentially and respectively sending the encrypted message units to a target chip for message processing. The technical scheme of the embodiment of the invention solves the problem of excessive connection times in the current business limited by the message length, and can reduce the consumption of short connection resources of the system and improve the performance and stability of the system on the basis of meeting the requirements of GP standards and short connection architecture.
In an alternative embodiment, the message splitting module 310 is specifically configured to:
judging whether the message length of the message to be sent is larger than the preset standard information length;
and when the message length of the message to be sent is larger than the preset standard information length, splitting the message by taking the preset standard information length as a message splitting unit.
In an alternative embodiment, the message splitting module 310 may be further specifically configured to:
adding a split flag at each message split location;
wherein the split mark is a vertical line, a diagonal line or a preset specified identifier.
In an alternative embodiment, the smart card communication message processing apparatus further includes a connection mode determining module, configured to: before detecting the message length of a message to be sent, it is determined whether a connection with the message encrypting device is a long connection or a short connection.
The smart card communication message processing device configured at the mobile phone shield management end provided by the embodiment of the invention can execute the smart card communication message processing method applied to the mobile phone shield management end provided by any embodiment of the invention, and has the corresponding functional modules and beneficial effects of the execution method.
Fig. 5 is a schematic structural diagram of a smart card communication message processing apparatus configured in a message encryption device according to an embodiment of the present invention, where the embodiment may be applicable to a scenario in which a mobile phone shield management end communicates with a security chip end, and the smart card communication message processing apparatus configured in the message encryption device may be implemented by software and/or hardware, and integrated into a computer terminal device with an application development function.
As shown in fig. 5, the smart card communication message processing apparatus provided in the message encrypting device includes: a message to be encrypted acquisition module 410, a message splitting processing module 420, and a message encryption module 430.
The message to be encrypted obtaining module 410 is configured to obtain a message set sent by a mobile phone shield management end, and identify a split flag of a message in the message set; a message splitting processing module 420, configured to split a message according to the message splitting flag to obtain a plurality of message units; and the message encrypting module 430 is configured to encrypt each message unit and send the encrypted message set to the mobile phone shield management end.
According to the technical scheme, a message set sent by a mobile phone shield management end is obtained, and split marks of messages in the message set are identified; splitting the message according to the message splitting mark to obtain a plurality of message units; and respectively carrying out encryption processing on each message unit, and sending the encrypted message set to the mobile phone shield management end. The method comprises the steps of obtaining a plurality of message units in batches, encrypting the message units, returning the message units to the mobile phone shield management end, reducing the connection times with the mobile phone shield management end in a one-time service processing process, reducing the short connection resource consumption of the system and improving the performance and stability of the system on the basis of meeting the requirements of GP standards and a short connection architecture.
In an alternative embodiment, the message encrypting module 430 is specifically configured to:
carrying out encryption calculation on each message unit according to a preset encryption algorithm;
and performing MAC calculation on the message unit subjected to encryption calculation.
The smart card communication message processing device configured in the message encryption equipment provided by the embodiment of the invention can execute the smart card communication message processing method applied to the message encryption equipment provided by any embodiment of the invention, and has the corresponding functional modules and beneficial effects of the execution method.
Fig. 6 is a schematic structural diagram of a computer device according to an embodiment of the present invention. FIG. 6 illustrates a block diagram of an exemplary computer device 12 suitable for use in implementing embodiments of the present invention. The computer device 12 shown in fig. 6 is merely an example and should not be construed as limiting the functionality and scope of use of embodiments of the present invention. The computer device 12 may be any terminal device with computing power, such as an intelligent controller, a server, a mobile phone, and the like.
As shown in FIG. 6, the computer device 12 is in the form of a general purpose computing device. Components of computer device 12 may include, but are not limited to: one or more processors or processing units 16, a system memory 28, a bus 18 that connects the various system components, including the system memory 28 and the processing units 16.
Bus 18 represents one or more of several types of bus structures, including a memory bus or memory controller, a peripheral bus, an accelerated graphics port, a processor, and a local bus using any of a variety of bus architectures. By way of example, and not limitation, such architectures include Industry Standard Architecture (ISA) bus, micro channel architecture (MAC) bus, enhanced ISA bus, video Electronics Standards Association (VESA) local bus, and Peripheral Component Interconnect (PCI) bus.
Computer device 12 typically includes a variety of computer system readable media. Such media can be any available media that is accessible by computer device 12 and includes both volatile and nonvolatile media, removable and non-removable media.
The system memory 28 may include computer system readable media in the form of volatile memory, such as Random Access Memory (RAM) 30 and/or cache memory 32. The computer device 12 may further include other removable/non-removable, volatile/nonvolatile computer system storage media. By way of example only, storage system 34 may be used to read from or write to non-removable, nonvolatile magnetic media (not shown in FIG. 6, commonly referred to as a "hard disk drive"). Although not shown in fig. 6, a magnetic disk drive for reading from and writing to a removable non-volatile magnetic disk (e.g., a "floppy disk"), and an optical disk drive for reading from or writing to a removable non-volatile optical disk (e.g., a CD-ROM, DVD-ROM, or other optical media) may be provided. In such cases, each drive may be coupled to bus 18 through one or more data medium interfaces. The system memory 28 may include at least one program product having a set (e.g., at least one) of program modules configured to carry out the functions of the embodiments of the invention.
A program/utility 40 having a set (at least one) of program modules 42 may be stored in, for example, system memory 28, such program modules 42 including, but not limited to, an operating system, one or more application programs, other program modules, and program data, each or some combination of which may include an implementation of a network environment. Program modules 42 generally perform the functions and/or methods of the embodiments described herein.
The computer device 12 may also communicate with one or more external devices 14 (e.g., keyboard, pointing device, display 24, etc.), one or more devices that enable a user to interact with the computer device 12, and/or any devices (e.g., network card, modem, etc.) that enable the computer device 12 to communicate with one or more other computing devices. Such communication may occur through an input/output (I/O) interface 22. Moreover, computer device 12 may also communicate with one or more networks such as a Local Area Network (LAN), a Wide Area Network (WAN) and/or a public network, such as the Internet, through network adapter 20. As shown, network adapter 20 communicates with other modules of computer device 12 via bus 18. It should be appreciated that although not shown in fig. 6, other hardware and/or software modules may be used in connection with computer device 12, including, but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, data backup storage systems, and the like.
The processing unit 16 executes various functional applications and data processing by running a program stored in the system memory 28, for example, implementing a smart card communication message processing method applied to a shield management terminal of a mobile phone according to the present embodiment, the method includes:
detecting the message length of a message to be sent, and splitting the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units;
transmitting the message set to a message encryption device to obtain a plurality of encrypted message units after the message encryption device is subjected to encryption processing;
and sequentially and respectively sending the encrypted message units to a target chip for message processing.
The smart card communication message processing method applied to the message encryption device provided by any embodiment of the invention can also be realized, and the method comprises the following steps:
acquiring a message set sent by a mobile phone shield management end, and identifying a splitting mark of a message in the message set;
splitting the message according to the message splitting mark to obtain a plurality of message units;
and respectively carrying out encryption processing on each message unit, and sending the encrypted message set to the mobile phone shield management end.
The embodiment of the invention also provides a computer readable storage medium, on which a computer program is stored, which when executed by a processor, implements the smart card communication message processing method applied to the mobile phone shield management end provided by any embodiment of the invention, the method comprises:
detecting the message length of a message to be sent, and splitting the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units;
transmitting the message set to a message encryption device to obtain a plurality of encrypted message units after the message encryption device is subjected to encryption processing;
and sequentially and respectively sending the encrypted message units to a target chip for message processing.
The computer readable storage medium having stored thereon a computer program which when executed by a processor can also implement a smart card communication message processing method applied to a message encrypting apparatus as provided in any embodiment of the present invention, the method comprising:
acquiring a message set sent by a mobile phone shield management end, and identifying a splitting mark of a message in the message set;
splitting the message according to the message splitting mark to obtain a plurality of message units;
and respectively carrying out encryption processing on each message unit, and sending the encrypted message set to the mobile phone shield management end.
The computer storage media of embodiments of the invention may take the form of any combination of one or more computer-readable media. The computer readable medium may be a computer readable signal medium or a computer readable storage medium. The computer readable storage medium may be, for example, but not limited to: an electrical, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or a combination of any of the foregoing. More specific examples (a non-exhaustive list) of the computer-readable storage medium would include the following: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In this document, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device.
The computer readable signal medium may include a propagated data signal with computer readable program code embodied therein, either in baseband or as part of a carrier wave. Such a propagated data signal may take any of a variety of forms, including, but not limited to, electro-magnetic, optical, or any suitable combination of the foregoing. A computer readable signal medium may also be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device.
Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to: wireless, wire, fiber optic cable, RF, etc., or any suitable combination of the foregoing.
Computer program code for carrying out operations of the present invention may be written in one or more programming languages, including an object oriented programming language such as Java, smalltalk, C ++ and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or server. In the case of a remote computer, the remote computer may be connected to the user's computer through any kind of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or may be connected to an external computer (for example, through the Internet using an Internet service provider).
It will be appreciated by those of ordinary skill in the art that the modules or steps of the invention described above may be implemented in a general purpose computing device, they may be centralized on a single computing device, or distributed over a network of computing devices, or they may alternatively be implemented in program code executable by a computer device, such that they are stored in a memory device and executed by the computing device, or they may be separately fabricated as individual integrated circuit modules, or multiple modules or steps within them may be fabricated as a single integrated circuit module. Thus, the present invention is not limited to any specific combination of hardware and software.
Note that the above is only a preferred embodiment of the present invention and the technical principle applied. It will be understood by those skilled in the art that the present invention is not limited to the particular embodiments described herein, but is capable of various obvious changes, rearrangements and substitutions as will now become apparent to those skilled in the art without departing from the scope of the invention. Therefore, while the invention has been described in connection with the above embodiments, the invention is not limited to the embodiments, but may be embodied in many other equivalent forms without departing from the spirit or scope of the invention, which is set forth in the following claims.
Claims (10)
1. A smart card communication message processing method is applied to a mobile phone shield management end and is characterized by comprising the following steps:
detecting the message length of a message to be sent, and splitting the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units;
transmitting the message set to a message encryption device to obtain a plurality of encrypted message units after the message encryption device is subjected to encryption processing;
and sequentially and respectively sending the encrypted message units to a target chip for message processing.
2. The method of claim 1, wherein splitting the message to be sent according to a preset standard information length comprises:
judging whether the message length of the message to be sent is larger than the preset standard information length;
and when the message length of the message to be sent is larger than the preset standard information length, splitting the message by taking the preset standard information length as a message splitting unit.
3. The method of claim 2, wherein splitting the message to be sent according to a preset standard information length, further comprises:
adding a split flag at each message split location;
wherein the split mark is a vertical line, a diagonal line or a preset specified identifier.
4. A method according to any of claims 1-3, characterized in that before detecting the message length of the message to be sent, further comprising:
it is determined whether a connection with the message encrypting device is a long connection or a short connection.
5. A smart card communication message processing method applied to a message encryption device, comprising:
acquiring a message set sent by a mobile phone shield management end, and identifying a splitting mark of a message in the message set;
splitting the message according to the message splitting mark to obtain a plurality of message units;
and respectively carrying out encryption processing on each message unit, and sending the encrypted message set to the mobile phone shield management end.
6. The method of claim 5, wherein said separately encrypting each of said message units comprises:
carrying out encryption calculation on each message unit according to a preset encryption algorithm;
and performing MAC calculation on the message unit subjected to encryption calculation.
7. The utility model provides a smart card communication message processing apparatus, disposes in cell-phone shield management end, which characterized in that includes:
the message splitting module detects the message length of the message to be sent, and splits the message to be sent according to the preset standard information length to obtain a message set containing a plurality of message units;
the message encryption management module is used for sending the message set to the message encryption equipment so as to acquire a plurality of encrypted message units after the message encryption equipment is subjected to encryption processing;
and the message sending module is used for sequentially and respectively sending the encrypted message units to a target chip for message processing.
8. A smart card communication message processing apparatus configured in a message encrypting device, comprising:
the information acquisition module to be encrypted is used for acquiring a message set sent by a mobile phone shield management end and identifying a splitting mark of a message in the message set;
the message splitting processing module is used for splitting the message according to the message splitting mark to obtain a plurality of message units;
and the message encryption module is used for respectively carrying out encryption processing on each message unit and sending the encrypted message set to the mobile phone shield management end.
9. A computer device, the computer device comprising:
one or more processors;
a memory for storing one or more programs;
the one or more programs, when executed by the one or more processors, cause the one or more processors to implement the smart card communication message processing method of any of claims 1-6.
10. A computer readable storage medium, on which a computer program is stored, characterized in that the program, when being executed by a processor, implements a smart card communication message processing method as claimed in any one of claims 1-6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311650591.2A CN117651273A (en) | 2023-12-04 | 2023-12-04 | Smart card communication message processing method, device, equipment and medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311650591.2A CN117651273A (en) | 2023-12-04 | 2023-12-04 | Smart card communication message processing method, device, equipment and medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117651273A true CN117651273A (en) | 2024-03-05 |
Family
ID=90042950
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311650591.2A Pending CN117651273A (en) | 2023-12-04 | 2023-12-04 | Smart card communication message processing method, device, equipment and medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117651273A (en) |
-
2023
- 2023-12-04 CN CN202311650591.2A patent/CN117651273A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11875171B2 (en) | Blockchain network transaction processing method, apparatus, device, and storage medium | |
| CN109150499B (en) | Method and device for dynamically encrypting data, computer equipment and storage medium | |
| CN111199037B (en) | Login method, system and device | |
| CN114826733B (en) | File transmission method, device, system, equipment, medium and program product | |
| US11449352B2 (en) | Systems and methods for converting record formats | |
| CN110719590B (en) | One-key login method, device, equipment and storage medium based on mobile phone number | |
| CN112560072B (en) | Key management method, device, medium and equipment based on block chain | |
| CN110535631A (en) | Method, system, equipment and the storage medium of edge calculations node data transmission | |
| CN110545542B (en) | Main control key downloading method and device based on asymmetric encryption algorithm and computer equipment | |
| CN113381889B (en) | Network slice determination method and device, electronic equipment and storage medium | |
| CN110830479B (en) | Multi-card-based one-key login method, device, equipment and storage medium | |
| CN115333851A (en) | Automatic driving data transmission method and device and electronic equipment | |
| CN111047444A (en) | Data transaction method and device based on block chain network | |
| CN114785560B (en) | Information processing method, device, equipment and medium | |
| CN115086428B (en) | Network request sending method and device and electronic equipment | |
| CN113037760B (en) | Message sending method and device | |
| CN117651273A (en) | Smart card communication message processing method, device, equipment and medium | |
| CN111459819B (en) | Software testing method and device, electronic equipment and computer readable medium | |
| CN114996730A (en) | Data encryption and decryption system, method, computer equipment and storage medium | |
| CN110781523B (en) | Method and apparatus for processing information | |
| CN113986995A (en) | Request distribution method and device, storage medium and electronic equipment | |
| CN114461912A (en) | Information processing method and device, electronic equipment and storage medium | |
| CN113283891A (en) | Information processing method and device and electronic equipment | |
| CN114443525A (en) | Data processing system, method, electronic equipment and storage medium | |
| CN112437052B (en) | Method, apparatus, electronic device, and computer-readable medium for processing information |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |